Themes Vulnerabilities

Chameleon - Arbitrary File Upload

Description

The chameleon WordPress theme was affected by an Arbitrary File Upload security vulnerability.

Affects Themes

chameleon
Fixed in 3.9

References

URL
https://en.0day.today/exploits/21449

Miscellaneous

Original Researcher
DaOne aka MockingBird
Verified
No
WPVDB ID
6d8a1616-7d60-46a4-a21c-8628829e870c

Timeline

Publicly Published
2013-11-02 (about 12 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2024-01-30
Title
WordPress < 6.4.3 - Admin+ PHP File Upload
Published
2020-10-09
Title
Autoptimize < 2.7.8 - Arbitrary File Upload via "Import Settings"
Published
2024-12-17
Title
WPLMS < 1.9.9.5.2 - Authenticated (Student+) Arbitrary File Upload
Published
2012-01-06
Title
FCChat 2.2.11-2.2.13 - Upload.php Arbitrary File Upload
Published
2024-11-13
Title
CSV to html < 3.27 - Subscriber+ Arbitrary File Upload